Don't Think Like a GRC Professional

Innovative GRC: How a Builder’s Mindset Can Revolutionize Compliance and Enhance User Experience Governance, Risk, and Compliance (GRC) is often seen as a rigid framework of do's and don'ts, but what if we approached GRC with a builder's mindset? This fresh perspective, focusing on innovation and customer-centric values, is exactly what we're exploring in today's discussion

Traditional GRC strategies can sometimes act as a blocker rather than a facilitator of progress. It's crucial to recognize the role user experience plays in GRC, as a business approach that aligns with the core principle of doing the right thing. Tony Fidell's book "Build" offers a profound understanding of this concept, particularly through the lens of Nest's legal challenges with Honeywell.

Fidell describes how strategic settlement decisions, though tough, were essential in keeping Nest's business viable. Nest's first legal hire didn't just think like a lawyer; he thought like a builder. He understood that his advice needed to factor in business objectives alongside legal risks.

The idea is not to abandon legal and compliance frameworks but to navigate them with creativity and foresight. For instance, when Nest faced regulatory requirements for labeling their Nest Cam due to potential strangulation hazards, they did more than comply. They designed the label to be large and easily removable without residue, addressing both the legal requirement and the user experience.

What does this mean for GRC professionals? It's a call to action to be more than just enforcers of rules. We need to engage actively with product development, marketing, and all aspects of the business to creatively solve problems and devise strategies that resonate with users while meeting legal and market standards.

So, as you go about your GRC tasks, remember to channel the mindset of a builder. Look for new paths, build bridges, and integrate GRC savvy with proactive business ethos. This is the art of GRC innovation – a symphony of compliance and customer focus that drives businesses forward. Don’t let GRC be a back-office function. Embrace it as a vital force in crafting products and strategies. Let's revolutionize GRC by adopting a builder's mindset and fostering enhanced user experiences and agile legal strategies.